$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft File: 2MHMikY6MVDL7AhlTmF4ANZuU-k.mft (raw, json) Hash identifier: 3IdRIH0LkAaFbK3aubxq1kybJjpvuxxcoBOU64OkTP4= Subject key identifier: 54:D8:F7:4D:DE:CB:BA:CE:3C:8E:71:44:7A:DF:02:40:62:66:17:10 Authority key identifier: D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 Certificate issuer: /CN=A91F89C1/serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Certificate serial: 0666 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft Manifest number: 065A Signing time: Thu 24 Apr 2025 22:16:16 +0000 Manifest this update: Thu 24 Apr 2025 22:16:16 +0000 Manifest next update: Thu 01 May 2025 22:16:16 +0000 Files and hashes: 1: 2MHMikY6MVDL7AhlTmF4ANZuU-k.crl (hash: KMVnXQb8uS1Hz+bqM6EZt5PqtF8iksQQfAzlQs+k4uw=) 2: F00A66308A9C11EB9B2E044BC4F9AE02.roa (hash: 6WUJgqskzShx2CRmJsEzW4Lp5E25NIFa3cIFrPQTpQE=) 3: 88A31320809211EB938F4016C4F9AE02.roa (hash: bchSnNZ1JAHUbuS+ZuP7bZtOW8CbMzZJlPlo9vXpT60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:16:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1, serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Validity Not Before: Apr 24 22:16:16 2025 GMT Not After : May 1 22:16:16 2025 GMT Subject: CN=680ab830-8d44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:12:5d:95:64:88:f6:45:71:c6:48:45:e7:52: ca:b6:43:15:87:78:5a:f0:5d:de:d9:10:be:a2:42: 11:73:8d:30:3a:d5:03:27:bc:0d:fe:a0:9c:58:32: 03:a5:6f:b9:2c:20:28:37:fe:1c:ae:e8:1f:9e:29: b9:46:8c:4e:07:87:de:4a:e8:a3:1c:58:ae:67:05: 26:39:b0:35:01:a5:30:46:35:8d:ff:c3:58:d4:4e: 81:46:7c:23:98:b5:aa:0e:45:f1:1b:c1:3c:bc:77: 66:e0:3a:d4:90:4c:d0:e5:46:c7:59:c1:59:69:b3: 21:75:10:09:2e:b7:6c:4a:b2:af:1a:6d:e6:a5:bb: 2b:ce:5e:dc:9e:02:52:0b:35:d1:07:59:fe:d0:a0: 9a:6b:2f:3a:e5:0c:b9:5c:5e:48:99:cf:13:58:db: a5:26:1e:07:70:23:44:76:f5:4e:2a:e9:a9:78:f5: 6f:c8:0e:74:7d:ed:bb:6c:12:cc:af:be:83:03:af: b8:32:b4:f4:be:5e:d8:d7:b3:9d:fc:c9:e6:41:8f: 8b:ba:fd:f7:65:6b:97:ea:fd:d7:09:bd:8b:54:5d: e8:99:ed:22:3e:98:76:bd:7c:47:1f:74:85:82:f7: d2:fa:c1:9b:f7:1b:9d:e7:9a:5b:b4:e4:56:1b:1c: f7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D8:F7:4D:DE:CB:BA:CE:3C:8E:71:44:7A:DF:02:40:62:66:17:10 X509v3 Authority Key Identifier: keyid:D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:6f:78:2b:ea:c8:dc:ef:57:aa:39:36:b3:ee:45:c1:38:60: 3e:d0:72:06:4f:80:3e:e7:cf:a8:df:5f:e9:43:8b:0a:c9:b8: 97:71:b6:38:07:6f:8a:26:92:a3:37:2c:95:b1:b0:f3:16:71: 08:32:b2:94:02:51:42:fe:23:cc:f9:40:ae:5c:f1:84:72:46: 11:62:b6:be:11:e2:91:5b:6e:e7:9a:cf:31:69:39:f8:6c:fa: ed:13:fa:f0:d2:8d:de:ad:1c:72:a1:ce:d3:db:30:2a:8f:3f: 7f:e3:a7:50:34:25:6e:71:e1:09:5a:9f:3a:02:f4:76:ca:01: c3:ad:3a:4b:31:82:b9:17:3c:70:31:20:72:dd:10:10:df:e7: bf:9e:97:27:cb:97:20:0d:df:28:6f:b7:72:67:1a:49:c9:ac: 95:96:fe:56:11:1a:51:e0:14:58:68:a0:95:ff:35:a3:fd:4d: e4:35:b7:1e:c4:05:05:a0:4f:53:c2:93:6d:84:2e:b5:30:fa: 25:44:65:2b:78:11:a6:05:3f:bf:c2:34:78:60:68:8a:8c:98: 45:d1:1a:2c:62:c0:0b:e4:67:49:fa:62:73:3f:04:92:fe:35: 7d:c3:d1:3b:73:a6:de:82:80:65:77:2e:3b:7f:98:90:51:09: 57:a4:0e:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKEQ4QzFDQzhBNDYzQTMxNTBDQkVDMDg2NTRFNjE3ODAw RDY2RTUzRTkwHhcNMjUwNDI0MjIxNjE2WhcNMjUwNTAxMjIxNjE2WjAYMRYwFAYD VQQDEw02ODBhYjgzMC04ZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshJdlWSI9kVxxkhF51LKtkMVh3ha8F3e2RC+okIRc40wOtUDJ7wN/qCcWDID pW+5LCAoN/4crugfnim5RoxOB4feSuijHFiuZwUmObA1AaUwRjWN/8NY1E6BRnwj mLWqDkXxG8E8vHdm4DrUkEzQ5UbHWcFZabMhdRAJLrdsSrKvGm3mpbsrzl7cngJS CzXRB1n+0KCaay865Qy5XF5Imc8TWNulJh4HcCNEdvVOKumpePVvyA50fe27bBLM r76DA6+4MrT0vl7Y17Od/MnmQY+Luv33ZWuX6v3XCb2LVF3ome0iPph2vXxHH3SF gvfS+sGb9xud55pbtORWGxz3HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTY903e y7rOPI5xRHrfAkBiZhcQMB8GA1UdIwQYMBaAFNjBzIpGOjFQy+wIZU5heADWblPp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8wQTNGMjY5Qzgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1WREw3QWhsVG1GNEFOWnVV LWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJNSE1pa1k2TVZETDdBaGxUbUY0QU5adVUtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlDMS8wQTNGMjY5QzgwODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1W REw3QWhsVG1GNEFOWnVVLWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9b3gr6sjc71eqOTaz7kXBOGA+0HIGT4A+58+o31/pQ4sKybiXcbY4 B2+KJpKjNyyVsbDzFnEIMrKUAlFC/iPM+UCuXPGEckYRYra+EeKRW27nms8xaTn4 bPrtE/rw0o3erRxyoc7T2zAqjz9/46dQNCVuceEJWp86AvR2ygHDrTpLMYK5Fzxw MSBy3RAQ3+e/npcny5cgDd8ob7dyZxpJyayVlv5WERpR4BRYaKCV/zWj/U3kNbce xAUFoE9TwpNthC61MPolRGUreBGmBT+/wjR4YGiKjJhF0RosYsAL5GdJ+mJzPwSS /jV9w9E7c6begoBldy47f5iQUQlXpA5b -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:38 2025 by rpki-client